Risk
4/8/2008
06:01 PM
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%

RSA: Chertoff Likens U.S. Cyber Security To 'Manhattan Project'

The Homeland Security secretary calls for beefing up the cyberdefenses of federal agencies and making sure all of them can respond to threats around the clock.

In a keynote address at the RSA Conference in San Francisco, Homeland Security Secretary Michael Chertoff warned that the damage caused by a large-scale cyberattack might result in consequences comparable to the Sept. 11, 2001, attack on the World Trade Center buildings in New York.

"We have to look not only at threats that have materialized in the past," said Chertoff. "We have to consider the threats that may materialize in the future. ... We know that a successful large-scale cyberattack against our country would have very wide-reaching consequences."

Through the Internet, terrorists and criminals can do the kind of damage they could never do on their own, Chertoff said. As an example, he cited the massive denial-of-service attack launched against Estonian government computers last year.

"This attack went beyond simple mischief, it represented an actual threat to the ability of the Estonian government to govern the country," said Chertoff.

"Imagine what would happen if it were possible for hackers to enter the air travel system," he said.

Chertoff characterized cybersecurity as a very serious challenge, one that is likely to grow more serious over time. A network response, he said, is necessary to deal with network attacks.

"It takes a network to beat a network," said Chertoff.

Though US-CERT, the U.S. Computer Emergency Readiness Team, which provides information necessary to defend the nation's networks, Chertoff hopes to bring additional resources to bear to defend the country's computers.

Chertoff likened the government's attempt to improve its cybersecurity to the intensive effort of the Manhattan Project that brought the atomic bomb to fruition. In January, President Bush signed an order that gave DHS and the National Security Agency greater power to oversee government computer security. Details about what the agencies are doing remain classified.

Presently, Chertoff said it's not possible to monitor access to federal networks in real time, not all federal agencies have 24/7 network monitoring capabilities, and US-CERT's Einstein system is too backward looking in that it identifies threats that have already had an impact.

Chertoff said the government simply doesn't respond fast enough across the board. "The time delay is time that we cannot afford to lose in a world where attacks come literally in microseconds and from all corners of the globe," he said.

In keeping with the President's National Strategy to Secure Cyberspace, Chertoff aims to reduce the number of network access points into federal agencies from about 1,000 presently to about 50. He called for beefing up the cyberdefenses of federal agencies and making sure that all of them can respond to threats around the clock.

"The best way to deal with an attack is to prevent it before it happens rather than after it has occurred," Chertoff said.

Chertoff also emphasized the need for the federal government to engage with the private sector, given that so much of the nation's critical infrastructure is secured by private organizations.

And at some point when the government's network security systems are more responsive, Chertoff said he expected that the government would share some network security data to help the private sector keep its systems secure.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
Partner Perspectives
What's This?
In a digital world inundated with advanced security threats, Intel Security seeks to transform how we live and work to keep our information secure. Through hardware and software development, Intel Security delivers robust solutions that integrate security into every layer of every digital device. In combining the security expertise of McAfee with the innovation, performance, and trust of Intel, this vision becomes a reality.

As we rely on technology to enhance our everyday and business life, we must too consider the security of the intellectual property and confidential data that is housed on these devices. As we increase the number of devices we use, we increase the number of gateways and opportunity for security threats. Intel Security takes the “security connected” approach to ensure that every device is secure, and that all security solutions are seamlessly integrated.
Featured Writers
White Papers
Cartoon
Current Issue
Dark Reading's October Tech Digest
Fast data analysis can stymie attacks and strengthen enterprise security. Does your team have the data smarts?
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-7877
Published: 2014-10-30
Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors.

CVE-2014-3051
Published: 2014-10-29
The Internet Service Monitor (ISM) agent in IBM Tivoli Composite Application Manager (ITCAM) for Transactions 7.1 and 7.2 before 7.2.0.3 IF28, 7.3 before 7.3.0.1 IF30, and 7.4 before 7.4.0.0 IF18 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof s...

CVE-2014-3668
Published: 2014-10-29
Buffer overflow in the date_from_ISO8601 function in the mkgmtime implementation in libxmlrpc/xmlrpc.c in the XMLRPC extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service (application crash) via (1) a crafted first argument t...

CVE-2014-3669
Published: 2014-10-29
Integer overflow in the object_custom function in ext/standard/var_unserializer.c in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an argument to the unserialize function ...

CVE-2014-3670
Published: 2014-10-29
The exif_ifd_make_value function in exif.c in the EXIF extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 operates on floating-point arrays incorrectly, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly exec...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Follow Dark Reading editors into the field as they talk with noted experts from the security world.